4.7 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
7.8 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
0.161 Low
EPSS
Percentile
95.9%
CentOS Errata and Security Advisory CESA-2006:0101
The Linux kernel handles the basic functions of the operating system.
These new kernel packages contain fixes for the security issues
described below:
a flaw in network IGMP processing that a allowed a remote user on the
local network to cause a denial of service (disabling of multicast reports)
if the system is running multicast applications (CVE-2002-2185, moderate)
a flaw which allowed a local user to write to firmware on read-only
opened /dev/cdrom devices (CVE-2004-1190, moderate)
a flaw in gzip/zlib handling internal to the kernel that may allow a
local user to cause a denial of service (crash) (CVE-2005-2458, low)
a flaw in procfs handling during unloading of modules that allowed a
local user to cause a denial of service or potentially gain privileges
(CVE-2005-2709, moderate)
a flaw in the SCSI procfs interface that allowed a local user to cause a
denial of service (crash) (CVE-2005-2800, moderate)
a flaw in 32-bit-compat handling of the TIOCGDEV ioctl that allowed
a local user to cause a denial of service (crash) (CVE-2005-3044, important)
a race condition when threads share memory mapping that allowed local
users to cause a denial of service (deadlock) (CVE-2005-3106, important)
a flaw when trying to mount a non-hfsplus filesystem using hfsplus that
allowed local users to cause a denial of service (crash) (CVE-2005-3109,
moderate)
a minor info leak with the get_thread_area() syscall that allowed
a local user to view uninitialized kernel stack data (CVE-2005-3276, low)
a flaw in mq_open system call that allowed a local user to cause a denial
of service (crash) (CVE-2005-3356, important)
a flaw in set_mempolicy that allowed a local user on some 64-bit
architectures to cause a denial of service (crash) (CVE-2005-3358, important)
a flaw in the auto-reap of child processes that allowed a local user to
cause a denial of service (crash) (CVE-2005-3784, important)
a flaw in the IPv6 flowlabel code that allowed a local user to cause a
denial of service (crash) (CVE-2005-3806, important)
a flaw in network ICMP processing that allowed a local user to cause
a denial of service (memory exhaustion) (CVE-2005-3848, important)
a flaw in file lease time-out handling that allowed a local user to cause
a denial of service (log file overflow) (CVE-2005-3857, moderate)
a flaw in network IPv6 xfrm handling that allowed a local user to
cause a denial of service (memory exhaustion) (CVE-2005-3858, important)
a flaw in procfs handling that allowed a local user to read kernel memory
(CVE-2005-4605, important)
All Red Hat Enterprise Linux 4 users are advised to upgrade their kernels
to the packages associated with their machine architectures and
configurations as listed in this erratum.
Merged security bulletin from advisories:
https://lists.centos.org/pipermail/centos-announce/2006-January/074742.html
https://lists.centos.org/pipermail/centos-announce/2006-January/074743.html
https://lists.centos.org/pipermail/centos-announce/2006-January/074744.html
https://lists.centos.org/pipermail/centos-announce/2006-January/074745.html
https://lists.centos.org/pipermail/centos-announce/2006-January/074746.html
Affected packages:
kernel
kernel-devel
kernel-doc
kernel-hugemem
kernel-hugemem-devel
kernel-smp
kernel-smp-devel
Upstream details at:
https://access.redhat.com/errata/RHSA-2006:0101
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
CentOS | 4 | i586 | kernel | < 2.6.9-22.0.2.EL | kernel-2.6.9-22.0.2.EL.i586.rpm |
CentOS | 4 | i686 | kernel | < 2.6.9-22.0.2.EL | kernel-2.6.9-22.0.2.EL.i686.rpm |
CentOS | 4 | i586 | kernel-devel | < 2.6.9-22.0.2.EL | kernel-devel-2.6.9-22.0.2.EL.i586.rpm |
CentOS | 4 | i686 | kernel-devel | < 2.6.9-22.0.2.EL | kernel-devel-2.6.9-22.0.2.EL.i686.rpm |
CentOS | 4 | noarch | kernel-doc | < 2.6.9-22.0.2.EL | kernel-doc-2.6.9-22.0.2.EL.noarch.rpm |
CentOS | 4 | i686 | kernel-hugemem | < 2.6.9-22.0.2.EL | kernel-hugemem-2.6.9-22.0.2.EL.i686.rpm |
CentOS | 4 | i686 | kernel-hugemem-devel | < 2.6.9-22.0.2.EL | kernel-hugemem-devel-2.6.9-22.0.2.EL.i686.rpm |
CentOS | 4 | i586 | kernel-smp | < 2.6.9-22.0.2.EL | kernel-smp-2.6.9-22.0.2.EL.i586.rpm |
CentOS | 4 | i686 | kernel-smp | < 2.6.9-22.0.2.EL | kernel-smp-2.6.9-22.0.2.EL.i686.rpm |
CentOS | 4 | i586 | kernel-smp-devel | < 2.6.9-22.0.2.EL | kernel-smp-devel-2.6.9-22.0.2.EL.i586.rpm |
4.7 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
7.8 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
0.161 Low
EPSS
Percentile
95.9%